[isf-wifidog] regarding an ubuntu gateway

Osvaldo Suarez osvaldo.baires at gmail.com
Lun 15 Déc 16:10:54 EST 2008 

Hi:
> On my system, the wifidog.conf is located here:
>
> /usr/local/etc/wifidog.conf
Yes, i did the same thing.

> In this file, there is an option:
>
> GatewayInterface
>
> You might want to change this to whatever you virtualbox interface is and
> restart the service.
I did it also.
The following is from the /usr/local/etc/wifidog.conf file:

GatewayID 0
GatewayInterface br1
GatewayAddress 192.168.1.1
AuthServer {
    Hostname wifidog.localhost
    SSLAvailable no
    Path /
}


brctl show
bridge name	bridge id		STP enabled	interfaces
br0		8000.001fe182dc1a	no		eth1
br1		8000.00ff59e6bc17	no		tap0
							tap3

I'm using a wireless connection (eth1). I created a second brigde for
the virtual interfaces. tap0 is my gateway ip and tap3 is the
interface from the virtual machine:
							
root at vostro:/usr/local/etc# ifconfig
br0       Link encap:Ethernet  HWaddr 00:1f:e1:82:dc:1a
          inet addr:192.168.0.216  Bcast:192.168.0.255  Mask:255.255.255.0
br1       Link encap:Ethernet  HWaddr 00:ff:59:e6:bc:17
eth0      Link encap:Ethernet  HWaddr 00:1c:23:5a:c9:0a
eth1      Link encap:Ethernet  HWaddr 00:1f:e1:82:dc:1a
tap0      Link encap:Ethernet  HWaddr 00:ff:dc:ef:0b:44
          inet addr:192.168.1.1  Bcast:0.0.0.0  Mask:255.255.255.255
tap3      Link encap:Ethernet  HWaddr 00:ff:74:1c:d7:0d

The only two interfaces with IP address are br0 (on behalf of eth1)
and tap0, my gateway for the virtual machine network.
The routes are:

ip route ls
192.168.1.0/24 dev br1  scope link
192.168.1.0/24 dev tap0  scope link
192.168.0.0/24 dev br0  proto kernel  scope link  src 192.168.0.216
default via 192.168.0.1 dev br0  metric 100



/etc/hosts
127.0.0.1	localhost
192.168.1.1	wifidog.localhost wifidog

> Also, try changing the error reporting set by Wifidog.
> This was set in a lot of the PHP files under /var/www/wifidog-auth/
> error_reporting(E_ALL);
> We changed it to:
> error_reporting(E_ALL ^E_NOTICE);
I'm trying that right now, I'll let you know if I find something.
Regards,
Osvaldo

>
>> Date: Mon, 15 Dec 2008 13:38:42 -0500
>> From: osvaldo.baires at gmail.com
>> To: wifidog at listes.ilesansfil.org
>> Subject: Re: [isf-wifidog] regarding an ubuntu gateway
>>
>> Hi:
>> > I made some notes here:
>> > http://justuber.com/publicwifi:public_wireless_internet_access
>> >
>> > These are from a year or two ago when I was setting up Wifidog on Ubuntu
>> > and
>> > Debian machines. Feel free to have a read and see if anything is of use
>> > to
>> > you.
>> I had followed the same steps that are shown in that guide. The
>> proxy.sh script is working ok (prevents the client machine from
>> connecting to port 22 of the gateway).
>>
>> Now the wididog daemon is preventing the client machine to access the
>> Internet, but then, it's not doing the redirection of port 80.
>>
>> The rule is there:
>>
>> iptables -nL -t nat | grep 80
>> REDIRECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp
>> dpt:80 redir ports 2060
>>
>> but it does nothing, if I try to surf, the browser just keeps on
>> trying to connect to the remote server but don't go to the
>> authenticacion server page.
>>
>> Regards,
>> Osvaldo
>>
>>
>> On Mon, Dec 15, 2008 at 1:01 PM, Chris Rowson
>> <christopherrowson at gmail.com> wrote:
>> > Hi:
>> >>
>> >> I just setup wifidog on an ubuntu 8.04 machine. There I setup both,
>> >> the gateway and the auth-server.
>> >> Then, I setup a virtualbox virtual machine which is supposed to use
>> >> the wifidog gateway in order to gain access to Internet.
>> >> The problem is that wifidog starts, setup the iptables rules, but the
>> >> virtual machine keeps on having access to Intenet.
>> >> The setup is something like this:
>> >> <internet> - <ubuntu-gw> - <ubuntu-virtual interface> -
>> >> <virtual-machine interface> - <virtual machine>
>> >> Without wifidog, the virtual machine is able to surf the Internet
>> >> thanks to an iptables MASQUERADE command. As soon as the wifidog is
>> >> started, I asumed the conection between the virtual machine and
>> >> Internet should be interrupted but that's not happening.
>> >> Could anyone point me on what i'm doing wrong?
>> >> I installed wifidog using the cvs version and setup the validation
>> >> grace period to 2 seconds.
>> >> Regards,
>> >> Osvaldo
>> >> _______________________________________________
>> >
>> >
>> > Chris
>> > _______________________________________________
>> > WiFiDog mailing list
>> > WiFiDog at listes.ilesansfil.org
>> > http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
>> >
>> _______________________________________________
>> WiFiDog mailing list
>> WiFiDog at listes.ilesansfil.org
>> http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
>
> ________________________________
> Send e-mail faster without improving your typing skills. Get your Hotmail(R)
> account.
> _______________________________________________
> WiFiDog mailing list
> WiFiDog at listes.ilesansfil.org
> http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
>

Plus d'informations sur la liste de diffusion WiFiDog